How to catch GitHub Actions workflow injections before attackers do
Strengthen your repositories against actions workflow injections — one of the most common vulnerabilities.
Home / Latest
The latest blogs from GitHub
Explore the latest blogs from GitHub on all things software development from the newest capabilities on the GitHub platform to research and insights—and guides to help you level up your engineering skills.
For the Love of Code: a summer hackathon for joyful, ridiculous, and wildly creative projects
That idea you’ve been sitting on? The domain you bought at 2AM? A silly or serious side project? This summer, we invite you to build it — for the joy, for the vibes, For the Love of Code 🧡
From chaos to clarity: Using GitHub Copilot agents to improve developer workflows
Explore how you can set Copilot coding agent up for success with custom instruction and Copilot setup steps.
Code review in the age of AI: Why developers will always own the merge button
When it comes to merging code, developers will always make the final decision. But we’re rethinking how tools like GitHub Copilot can help.
Modeling CORS frameworks with CodeQL to find security vulnerabilities
Discover how to increase the coverage of your CodeQL CORS security by modeling developer headers and frameworks.
Beyond prompt crafting: How to be a better partner for your AI pair programmer
Ensuring quality code suggestions from Copilot goes beyond the perfect prompt. Context is key to success when working with your AI pair programmer.
Git security vulnerabilities announced
Today, the Git project released new versions to address seven security vulnerabilities that affect all prior versions of Git.
CVE-2025-53367: An exploitable out-of-bounds write in DjVuLibre
DjVuLibre has a vulnerability that could enable an attacker to gain code execution on a Linux Desktop system when the user tries to open a crafted document.
5 ways to transform your workflow using GitHub Copilot and MCP
Learn how to streamline your development workflow with five different MCP use cases.
From idea to PR: A guide to GitHub Copilot’s agentic workflows
A practical guide to GitHub Copilot’s agentic coding agent, chat modes, and remote MCP server so you turn issues into tested PRs with clear steps (and no hype).
Understand your software’s supply chain with GitHub’s dependency graph
The GitHub dependency graph maps every direct and transitive dependency in your project, so you can identify risks, prioritize fixes, and keep your code secure.
GitHub Advisory Database by the numbers: Known security vulnerabilities and what you can do about them
Use these insights to automate software security (where possible) to keep your projects safe.
From pair to peer programmer: Our vision for agentic workflows in GitHub Copilot
AI agents in GitHub Copilot don’t just assist developers but actively solve problems through multi-step reasoning and execution. Here’s what that means.
Why developer expertise matters more than ever in the age of AI
AI can help you code faster, but knowing why the code works—and sharpening your human-in-the-loop skills—is what makes you a great developer.
GitHub Copilot Spaces: Bring the right context to every suggestion
Learn how to build your first space in minutes and customize Copilot to match your team’s unique coding style and workflows.
5 tips for using GitHub Copilot with issues to boost your productivity
Reduce context-switching, minimize manual work, and accelerate resolution times with these new AI-powered features.
Highlights from Git 2.50
The open source Git project just released Git 2.50. Here is GitHub’s look at some of the most interesting features and changes introduced since last time.
How the GitHub billing team uses the coding agent in GitHub Copilot to continuously burn down technical debt
Tech debt is a big problem that no one has time to solve. GitHub Copilot coding agent can help.
GitHub Availability Report: May 2025
In May, we experienced three incidents that resulted in degraded performance across GitHub services.
How GitHub engineers tackle platform problems
Our best practices for quickly identifying, resolving, and preventing issues at scale.
GitHub for Beginners: Code review and refactoring with GitHub Copilot
Learn how to use GitHub Copilot to help review and polish your code.
The world's largest developer platform
GitHub
Build what’s next on GitHub, the place for anyone from anywhere to build anything.
The GitHub Podcast
Catch up on the GitHub podcast, a show dedicated to the topics, trends, stories and culture in and around the open source developer community on GitHub.